Scan Tack

Publisher Information

Scan Tack is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of adware type software. It is part of the Yontoo/Sambreel group and distributes web browser add-ons, typically potentially unwanted and adware in nature, that are designed to modify a user's typical search beahvior as well as display context and popup advertising.
Authority:
VeriSign, Inc.

Valid from:
1/22/2014 1:00:00 AM

Valid to:
1/23/2015 12:59:59 AM

Subject:
CN=Scan Tack, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Scan Tack, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
44d91a3142283ce62b23f23c84838b0d

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.Yontoo.ScanTack.L, PUP.ScanTack.O, PUP.ScanTack.Q, PUP.ScanTack.X, Adware.Yontoo.ScanTack.CC, PUP.ScanTack.N, Adware.Yontoo.ScanTack.R, PUP.ScanTack.V, PUP.ScanTack.S, PUP.ScanTack.n, PUP.ScanTack.l, PUP.ScanTack.W, PUP.ScanTack.g, PUP.ScanTack.R, PUP.ScanTack.U, PUP.ScanTack.Y, PUP.ScanTack.i, PUP.Service.ScanTack.K, Adware.Service.ScanTack.O, PUP.ScanTack.T
100.00%

AVG
BrowseFox.F, Generic, Generic_r, MalSign.Generic, MalSign.Slizearch, Adware Generic5.BZFO
98.00%

Baidu Antivirus
Adware.Win32.Agent, Adware.MSIL.BrowseFox, Adware.Win32.BrowseFox
94.00%

VIPRE Antivirus
Yontoo, Threat.4741131, Trojan.Win32.Generic, Threat.4150696, Threat.4734384
92.00%

MicroWorld eScan
Gen:Variant.Adware.BHO.Agent.4, Adware.SwiftBrowse.Y, Gen:Variant.Adware.SwiftBrowse.1, Adware.Agent.OCH
84.00%

Bitdefender
Gen:Variant.Adware.BHO.Agent.4, Adware.SwiftBrowse.Y, Gen:Variant.Adware.SwiftBrowse.1, Adware.Agent.OCH
84.00%

G Data
Gen:Variant.Adware.BHO.Agent, Adware.SwiftBrowse, Gen:Variant.Adware.SwiftBrowse, Adware.Agent.OCH
84.00%

Emsisoft Anti-Malware
Gen:Variant.Adware.BHO.Agent, Adware.SwiftBrowse.Y, Gen:Variant.Adware.SwiftBrowse
82.00%

F-Secure
Gen:Variant.Adware.BHO.Agent.4, Adware.SwiftBrowse.Y, Gen:Variant.Adware.SwiftBrowse.1, Adware.Agent.OCH
82.00%

nProtect
Trojan.GenericKD.1678656, Adware.SwiftBrowse.Y, Trojan-Clicker/W32.LinkSwift.98592, Adware.Agent.OCH, Trojan-Clicker/W32.LinkSwift.197408
82.00%

26 / 68    (Adware)
maintainer.exe  (401ef710a9c6a9bf8f8d1e0583b3be5f)

26 / 68    (Adware)
maintainer.bak  (2449b990f270554be9602a202c3f49b1)

22 / 68    (Adware)
utilscantack.exe  (e4757d4758972101f636f762e0b451f7)

23 / 68    (Adware)
maintainer.bak  (dd8046889d162362d87b5dae4363d3f7)

24 / 68    (Adware)
maintainer.exe  (c4155dd71919de0e0b2245492fa933bd)

36 / 68    (Adware)

27 / 68    (Adware)
scantack.browseradapter.exe  (fd29e4fe27edcbcc97a7ba3e3a6e076f)

15 / 68    (Adware)
scantack.purbrowse64.exe  (86b202ef250177d52e9bbd9993eb91b2)

17 / 68    (Adware)
updatescantack.exe  (c826d9d88b2b245a2b6b09f784827c2b)

23 / 68    (Adware)
maintainer.exe  (468216fe2b011ddd59aaf241a6ed97e7)

21 / 68    (Adware)

22 / 68    (Adware)
scantack.browseradapter64.exe  (69db9c4e51054d9d137f15ad0b503d7e)

10 / 68    (Adware)
{9acd1534-e8f8-40cb-b5ac-4996fe01175b}w64.sys (StdLib)  (fd1bb22c904f7c32ee7ed4efb8af15e1)

14 / 68    (Adware)
scantackuntemp.exe  (50f045e7431fb4863cd80ddde0d3427f)

21 / 68    (Adware)
maintainer.bak  (861ce76d98279c4019176b8a88c3fa7e)

21 / 68    (Adware)
maintainer.exe  (f5309a6acd9d30d9ab7ea64d2b9af886)

35 / 68    (Adware)

23 / 68    (Adware)
scantackbaapp.dll  (8f063d2c3fe37d59d34fa63c6adb8e99)

20 / 68    (Adware)

19 / 68    (Adware)
scantack.browseradapter64.exe  (86681c631e8ac5b0721829d4a41a8fd1)

19 / 68    (Adware)
9acd1534e8f840cbb5ac64.dll  (b7e438101fd4d0825726e04eda37b26f)

22 / 68    (Adware)
9acd1534e8f840cbb5ac.dll  (9f934daad0753f9343d58621aeaec509)

14 / 68    (Adware)
utilscantack.exe  (9ef445ed84cf0ea7074b4b2c40e15b7c)

17 / 68    (Adware)
ScanTack.BRT.Helper.exe  (9bd9deb07f282dde2d153e4ee179002d)

35 / 68    (Adware)

23 / 68    (Adware)
scantack.browseradapter.exe  (4f6b757a199ae29a56357970936f67bc)

5 / 68      (Adware)
{9acd1534-e8f8-40cb-b5ac-4996fe01175b}t.sys (StdLib)  (68bb538dd9141c82477002ff3fdb79e8)

34 / 68    (Adware)

31 / 68    (Adware)
scantackbaapp.dll  (e2af40eb565a593083ef62fcc23c40b8)

14 / 68    (Adware)
scantack.browseradapter.exe  (5600c7ecf77f3e23b5f1e9a099ad356c)

 
Latest 30 of 411 files

The following publishers (by Authenticode signature organization name) are related.

30 of 45 publishers

Detection Incidence by Country
* Note, the details and description above are based on the code signing digital signature issued to Scan Tack by VeriSign, Inc. on January 22, 2014 with the serial number '44d91a3142283ce62b23f23c84838b0d'.